New Okta Platform Innovations Extend Identity Security Fabric to Non-Human Identities in an Agentic AI Future
Okta (NASDAQ: OKTA) has announced new platform capabilities to secure AI agents and non-human identities with the same level of security as human identities. The enhancement comes as Deloitte forecasts that by 2027, 50% of companies using GenAI will adopt agents.
The key innovations include:
- Identity Security Posture Management and Okta Privileged Access for protecting AI agents and non-human identities
- Separation of Duties (SoD) in Okta Identity Governance to prevent security risks
- Secure Device Features under Okta Device Access and Adaptive MFA
- Secure Identity Integrations for business-critical applications
- On-prem Connector for integrating on-premises apps with Okta Identity Governance
These updates address critical security challenges, as only 15% of organizations reported confidence in securing non-human identities last year. The platform aims to provide unified security framework for managing both AI and human identities across enterprise ecosystems.
Okta (NASDAQ: OKTA) ha annunciato nuove capacità della piattaforma per garantire la sicurezza degli agenti AI e delle identità non umane con lo stesso livello di sicurezza delle identità umane. Questo miglioramento arriva mentre Deloitte prevede che entro il 2027, il 50% delle aziende che utilizzano GenAI adotterà agenti.
Le principali innovazioni includono:
- Gestione della postura di sicurezza delle identità e accesso privilegiato di Okta per proteggere gli agenti AI e le identità non umane
- Separazione dei doveri (SoD) nella governance delle identità di Okta per prevenire rischi di sicurezza
- Funzionalità di dispositivo sicuro sotto l'accesso ai dispositivi di Okta e MFA adattivo
- Integrazioni di identità sicure per applicazioni critiche per il business
- Connettore on-prem per integrare app locali con la governance delle identità di Okta
Questi aggiornamenti affrontano sfide critiche di sicurezza, poiché solo il 15% delle organizzazioni ha riportato fiducia nella sicurezza delle identità non umane lo scorso anno. La piattaforma mira a fornire un framework di sicurezza unificato per gestire sia le identità AI che quelle umane all'interno degli ecosistemi aziendali.
Okta (NASDAQ: OKTA) ha anunciado nuevas capacidades de la plataforma para asegurar agentes de IA e identidades no humanas con el mismo nivel de seguridad que las identidades humanas. Esta mejora llega mientras Deloitte pronostica que para 2027, el 50% de las empresas que utilizan GenAI adoptarán agentes.
Las principales innovaciones incluyen:
- Gestión de la postura de seguridad de identidades y acceso privilegiado de Okta para proteger agentes de IA e identidades no humanas
- Separación de funciones (SoD) en la gobernanza de identidades de Okta para prevenir riesgos de seguridad
- Funciones de dispositivo seguro bajo el acceso a dispositivos de Okta y MFA adaptativo
- Integraciones de identidad seguras para aplicaciones críticas para el negocio
- Conector on-prem para integrar aplicaciones locales con la gobernanza de identidades de Okta
Estas actualizaciones abordan desafíos críticos de seguridad, ya que solo el 15% de las organizaciones reportaron confianza en la seguridad de identidades no humanas el año pasado. La plataforma tiene como objetivo proporcionar un marco de seguridad unificado para gestionar tanto identidades de IA como humanas en los ecosistemas empresariales.
옥타 (NASDAQ: OKTA)는 AI 에이전트와 비인간 정체성을 인간 정체성과 동일한 수준의 보안으로 보호하는 새로운 플랫폼 기능을 발표했습니다. 이 개선은 딜로이트가 2027년까지 GenAI를 사용하는 기업의 50%가 에이전트를 채택할 것이라고 예측하면서 이루어졌습니다.
주요 혁신 사항은 다음과 같습니다:
- AI 에이전트와 비인간 정체성을 보호하기 위한 옥타의 정체성 보안 태세 관리 및 특권 액세스
- 보안 위험을 방지하기 위한 옥타 정체성 거버넌스의 직무 분리(SoD)
- 옥타 장치 접근 및 적응형 MFA 하의 안전한 장치 기능
- 비즈니스에 중요한 애플리케이션을 위한 안전한 정체성 통합
- 옥타 정체성 거버넌스와 온프레미스 앱을 통합하기 위한 온프레미스 커넥터
이 업데이트는 지난해 비인간 정체성을 보호하는 데 자신감을 가진 조직이 15%에 불과하다는 중요한 보안 문제를 해결합니다. 이 플랫폼은 기업 생태계 전반에 걸쳐 AI 및 인간 정체성을 관리하기 위한 통합 보안 프레임워크를 제공하는 것을 목표로 합니다.
Okta (NASDAQ: OKTA) a annoncé de nouvelles capacités de plateforme pour sécuriser les agents d'IA et les identités non humaines avec le même niveau de sécurité que les identités humaines. Cette amélioration intervient alors que Deloitte prévoit qu'en 2027, 50 % des entreprises utilisant GenAI adopteront des agents.
Les principales innovations comprennent:
- Gestion de la posture de sécurité des identités et accès privilégié d'Okta pour protéger les agents d'IA et les identités non humaines
- Séparation des fonctions (SoD) dans la gouvernance des identités d'Okta pour prévenir les risques de sécurité
- Fonctionnalités de dispositif sécurisé sous l'accès aux dispositifs d'Okta et MFA adaptatif
- Intégrations d'identité sécurisées pour des applications critiques pour l'entreprise
- Connecteur sur site pour intégrer des applications locales avec la gouvernance des identités d'Okta
Ces mises à jour répondent à des défis de sécurité critiques, car seulement 15 % des organisations ont déclaré avoir confiance dans la sécurisation des identités non humaines l'année dernière. La plateforme vise à fournir un cadre de sécurité unifié pour gérer à la fois les identités d'IA et humaines au sein des écosystèmes d'entreprise.
Okta (NASDAQ: OKTA) hat neue Plattformfunktionen angekündigt, um KI-Agenten und nicht-menschliche Identitäten mit dem gleichen Sicherheitsniveau wie menschliche Identitäten abzusichern. Diese Verbesserung erfolgt, während Deloitte prognostiziert, dass bis 2027 50% der Unternehmen, die GenAI nutzen, Agenten übernehmen werden.
Die wichtigsten Innovationen umfassen:
- Identitätssicherheitsmanagement und Okta Privileged Access zum Schutz von KI-Agenten und nicht-menschlichen Identitäten
- Trennung der Aufgaben (SoD) in der Okta Identitätsgovernance zur Vermeidung von Sicherheitsrisiken
- Sichere Gerätefunktionen unter Okta Device Access und Adaptive MFA
- Sichere Identitätsintegrationen für geschäftskritische Anwendungen
- On-Prem-Connector zur Integration von On-Premises-Apps mit der Okta Identitätsgovernance
Diese Updates adressieren kritische Sicherheitsherausforderungen, da nur 15% der Organisationen im letzten Jahr Vertrauen in die Sicherung nicht-menschlicher Identitäten berichteten. Die Plattform zielt darauf ab, ein einheitliches Sicherheitsframework für das Management sowohl von KI- als auch von menschlichen Identitäten in Unternehmensökosystemen bereitzustellen.
- Launch of comprehensive security features for managing AI and non-human identities
- Strategic positioning for growing AI adoption market
- Introduction of Secure Identity Integrations for critical business applications
- Enhanced security capabilities with Zero Trust policies implementation
- Only 15% of organizations currently confident in securing non-human identities
- Some announced features still under development or in early access
Insights
Okta's platform expansion to secure non-human identities represents a critical evolution in identity security as organizations rapidly adopt AI agents. With Deloitte forecasting that
The security challenges of non-human identities are substantial – they typically lack MFA, use static credentials, and possess excessive privileges. That only
The new capabilities form a comprehensive solution: Identity Security Posture Management for discovering and monitoring non-human identity risks, Privileged Access controls extending Zero Trust principles to machine identities, Separation of Duties enforcement for compliance, and Secure Device Features that reduce MFA fatigue while enhancing protection.
Particularly valuable is Okta's extensible approach through Secure Identity Integrations, which allows security teams to implement deep protections across critical applications like Google Workspace and Microsoft 365. This addresses the reality that most organizations operate heterogeneous environments where identity sprawl creates significant attack surface expansion.
By unifying human and non-human identity security within a single fabric, Okta eliminates security silos that attackers exploit while providing the visibility and governance essential for managing the exploding digital workforce.
Okta's enhanced platform capabilities arrive at a pivotal moment as businesses navigate the operational complexities of managing growing digital workforces alongside human employees. This initiative addresses a critical business challenge – the projected explosion of non-human identities that will require the same rigorous security oversight as traditional users.
The strategic timing is noteworthy. By entering this space as AI agent adoption accelerates, Okta is establishing itself as a frontrunner in a security category that will become increasingly essential. The integrated identity security fabric approach provides organizations substantial operational advantages – unified visibility, consistent policy enforcement, and reduced management overhead across all identity types.
For enterprises building AI agent capabilities, this development removes a significant security obstacle. The availability of governance controls like Separation of Duties and continuous monitoring for non-human identities directly addresses compliance requirements that might otherwise slow adoption.
Okta's integration-first approach with its Secure Identity Integrations is particularly valuable for enterprise environments, where security must span across disparate systems. The GA availability of integrations for business-critical applications like Salesforce and Microsoft 365 means organizations can immediately strengthen security posture for their most sensitive environments.
This platform expansion demonstrates Okta's understanding that as AI transforms workforces, identity security must evolve from purely human-centric models to comprehensive frameworks encompassing all entities accessing enterprise resources.
Why it Matters:
- The number of non-human identities is set to grow exponentially, with Deloitte1 forecasting that by 2027, half of all companies using GenAI will also adopt agents in some capacity. Some companies have already begun deploying hundreds of AI-SDRs and thousands of customer service agents.
- Non-human identities (i.e., service accounts, shared accounts, break-glass identities, API keys, access tokens, and automation tools) are inherently difficult to secure because they are often non-federated, lack MFA, and have static credentials that aren’t regularly rotated. These factors, combined with excessive privileges and a high blast radius, create an attractive attack vector for adversaries.
-
Last year, only
15% of organizations2 said they remain confident in their ability to secure them. - With more types of identities, machines, and agents trying to access increasingly critical data and resources, across larger numbers of devices, organizations will be faced with managing this added complexity and identity sprawl.
- Now more than ever, organizations will need to implement an identity security fabric, which is defined as a unified framework for securing, managing, and governing both non-human and human identities across ecosystems at scale.
“Amid the excitement of embracing the next wave of generative AI, companies are moving quickly to deploy agentic use cases, often overlooking the critical need to secure these systems and control the sprawl of non-human identities,” said Arnab Bose, Chief Product Officer, Okta Platform at Okta. “By bringing these identities into the identity security fabric, the Okta Platform can help organizations secure the rising digital labor force with the same rigor and vigilance as the human workforce.”
Comprehensive Identity Security Capabilities for Managing Every Type of Identity
The rapid adoption of cloud services, SaaS applications, remote work, and now the rise of non-human identities has transformed the security landscape. Homogeneous tech stacks don’t exist, and would present their own set of security risks.
This fragmentation creates complexity, gaps in security tools, and an expanded attack surface, making it harder for security teams to maintain a holistic view of their security posture. An extensible identity security fabric enables organizations to build best-in-breed stacks and connect disparate security tools across the enterprise. However, to be effective, companies need the right identity tools, including posture management, threat protection, privileged access, governance, device access, and more.
With new and enhanced Okta Platform capabilities, organizations can have more comprehensive security for all identities—human and non-human—with solutions that are seamlessly interconnected and fully integrated across the business.
What’s New – Identity Security Posture Management and Okta Privileged Access
New capabilities for Identity Security Posture Management and Okta Privileged Access provide companies with a comprehensive, end-to-end solution for protecting AI agents and other non-human identities, including service accounts, shared accounts, break-glass identities, API keys, access tokens, and automation tools.
Organizations can better discover, secure, and manage non-human identities, while ensuring AI-driven automation and machine-to-machine interactions remain governed under Zero Trust policies. These tools also continuously monitor NHI risks and vulnerabilities.
What’s New - Separation of Duties
Available today for customers in GA preview, Separation of Duties (SoD) in Okta Identity Governance (OIG) helps ensure that users do not accumulate conflicting access permissions that could introduce security risks or compliance violations. By enforcing SoD policies based on pre-defined business rules, SoD helps organizations prevent fraud, maintain regulatory compliance, and reduce the risk of insider threats.
What’s New – Secure Device Features
Available today for customers in Early Access, Okta is releasing new Secure Device Features under Okta Device Access and Adaptive MFA that minimize MFA fatigue and the risk of credential theft by seamlessly integrating device context and hardware protection for Zero Trust access control. These features integrate with the customer’s ecosystem of tools to gather signals that inform access policies and continuous risk assessment and enforcement.
Protecting Identities, Across Every Application and Environment
Since no enterprise today has a fully homogeneous tech stack, organizations need deep and secure identity integrations into every single application they use. This approach unifies user context, resources, policies and risk signals across infrastructure, apps, APIs, and more regardless of the identity types.
What’s New - Secure Identity Integrations (SII)
Generally available today for customers, Okta Secure Identity Integrations provide an unprecedented level of comprehensive, out-of-the-box security integrations for the most business-critical applications. Now available as a collection in the Okta Integration Network, companies can quickly configure deep integrations for applications, like Google Workspace, Microsoft 365, and Salesforce, that go beyond SSO and lifecycle management to manage user privileges, uncover hidden risks, and rapidly contain threats with built-in remediation and universal logout.
Other New Innovations:
- On-prem Connector: Available today for customers in Early Access, Okta On-prem Connector is a new out-of-the-box connector that allows customers to integrate their on-premises apps with Okta Identity Governance, enabling the discovery, visibility, and management of fine-grained application entitlements within Okta.
1 Autonomous generative AI agents: Under development, Deloitte, November 19, 2024.
2 CSA and Astrix Research: The State of Non-Human Identity Security, Cloud Security Alliance and Astrix, September 12, 2024.
Disclaimer: Any products, features, functionalities, certifications, authorizations, or attestations referenced in this material that are not currently generally available or have not yet been obtained or are not currently maintained may not be delivered or obtained on time or at all. Product roadmaps do not represent a commitment, obligation or promise to deliver any product, feature, functionality, certification or attestation and you should not rely on them to make your purchase decisions.
About Okta
Okta, Inc. is The World’s Identity Company™. We secure Identity, so everyone is free to safely use any technology. Our customer and workforce solutions empower businesses and developers to use the power of Identity to drive security, efficiencies, and success — all while protecting their users, employees, and partners. Learn why the world’s leading brands trust Okta for authentication, authorization, and more at okta.com.
View source version on businesswire.com: https://www.businesswire.com/news/home/20250409043803/en/
Media Contact:
Kyrk Storer
press@okta.com
Source: Okta, Inc.
FAQ
What new security features has Okta (OKTA) introduced for AI agents?
How many companies are expected to adopt AI agents by 2027 according to Deloitte?
What is the current confidence level in securing non-human identities?
What are the main components of Okta's new platform update?
How does Okta's new Separation of Duties (SoD) feature work?
